From cc6bd6299d9cc48875f5f9897e6940e3eb14550c Mon Sep 17 00:00:00 2001
From: Ricardo Carneiro <ricadroroberto@outlook.com>
Date: Thu, 21 Aug 2025 18:19:12 -0300
Subject: [PATCH] fix: https prod

---
 src/BCards.Web/Program.cs | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/src/BCards.Web/Program.cs b/src/BCards.Web/Program.cs
index d01fa48..fdb397a 100644
--- a/src/BCards.Web/Program.cs
+++ b/src/BCards.Web/Program.cs
@@ -78,11 +78,21 @@ builder.Services.AddAuthentication(options =>
     var msAuth = builder.Configuration.GetSection("Authentication:Microsoft");
     options.ClientId = msAuth["ClientId"] ?? "";
     options.ClientSecret = msAuth["ClientSecret"] ?? "";
+    options.CallbackPath = "/signin-microsoft";
 
     // Força seleção de conta a cada login
     options.AuthorizationEndpoint = "https://login.microsoftonline.com/common/oauth2/v2.0/authorize";
     options.TokenEndpoint = "https://login.microsoftonline.com/common/oauth2/v2.0/token";
 
+    if (!builder.Environment.IsDevelopment())
+    {
+        options.Events.OnRedirectToAuthorizationEndpoint = context =>
+        {
+            context.RedirectUri = context.RedirectUri.Replace("http://", "https://");
+            return Task.CompletedTask;
+        };
+    }
+
     options.Events = new OAuthEvents
     {
         OnRedirectToAuthorizationEndpoint = context =>